Vulnerabilities > CVE-2019-9694 - Unspecified vulnerability in Symantec Endpoint Encryption

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

symantec

nessus

NVD

Published: 2019-04-10

Updated: 2020-08-24

Summary

Symantec Endpoint Encryption prior to SEE 11.2.1 MP1 may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Endpoint Encryption 11.0 Symantec Endpoint Encryption 11.1 Symantec Endpoint Encryption 11.1.1 Symantec Endpoint Encryption 11.1.2 Symantec Endpoint Encryption 11.1.3 Symantec Endpoint Encryption 11.2	9

Nessus

NASL family	Windows
NASL id	SYMANTEC_ENDPOINT_ENCRYPTION_DRIVE_ENCRYPTION_SYMSA1478.NASL
description	The version of the Symantec Endpoint Encryption (SEE) installed on the remote Windows host is prior to 11.2.1 MP1. It is, therefore, affected by a privilege escalation vulnerability.
last seen	2020-06-01
modified	2020-06-02
plugin id	125372
published	2019-05-24
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/125372
title	Symantec Endpoint Encryption < 11.2.1 MP1 (SYMSA1478)

References

https://support.symantec.com/en_US/article.SYMSA1478.html